Sheriff

Sheriff is an open-source MCP (Model Context Protocol) server that acts as an AI-assisted static analysis issue fixer. It allows AI agents like Claude, Cursor, and other MCP-compatible clients to efficiently triage and fix static analysis issues reported in SARIF format by tools such as Qodana, Semgrep, ESLint, CodeQL, SpotBugs, Bandit, Checkov, Trivy, and SonarQube. Sheriff supports batching, progress persistence, scope filtering, and session resilience, making it ideal for development teams and AI devtools seeking a scalable workflow for automatic code quality improvement and bug fixing.